[go: up one dir, main page]

WO2008013008A1 - Procédé de communication secrète et dispositif de communication secrète de celui-ci - Google Patents

Procédé de communication secrète et dispositif de communication secrète de celui-ci Download PDF

Info

Publication number
WO2008013008A1
WO2008013008A1 PCT/JP2007/062375 JP2007062375W WO2008013008A1 WO 2008013008 A1 WO2008013008 A1 WO 2008013008A1 JP 2007062375 W JP2007062375 W JP 2007062375W WO 2008013008 A1 WO2008013008 A1 WO 2008013008A1
Authority
WO
WIPO (PCT)
Prior art keywords
information
encryption
initial random
error correction
random numbers
Prior art date
Application number
PCT/JP2007/062375
Other languages
English (en)
Japanese (ja)
Inventor
Masahito Hayashi
Original Assignee
Japan Science And Technology Agency
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Japan Science And Technology Agency filed Critical Japan Science And Technology Agency
Priority to CA2657729A priority Critical patent/CA2657729C/fr
Priority to JP2008526708A priority patent/JP4885960B2/ja
Priority to GB0900546.3A priority patent/GB2453471B/en
Priority to US12/374,227 priority patent/US8239680B2/en
Publication of WO2008013008A1 publication Critical patent/WO2008013008A1/fr

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/06Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols the encryption apparatus using shift registers or memories for block-wise or stream coding, e.g. DES systems or RC4; Hash functions; Pseudorandom sequence generators
    • H04L9/065Encryption by serially and continuously modifying data stream elements, e.g. stream cipher systems, RC4, SEAL or A5/3
    • H04L9/0656Pseudorandom key sequence combined element-for-element with data sequence, e.g. one-time-pad [OTP] or Vernam's cipher
    • H04L9/0662Pseudorandom key sequence combined element-for-element with data sequence, e.g. one-time-pad [OTP] or Vernam's cipher with particular pseudorandom sequence generator
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/06Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols the encryption apparatus using shift registers or memories for block-wise or stream coding, e.g. DES systems or RC4; Hash functions; Pseudorandom sequence generators
    • H04L9/065Encryption by serially and continuously modifying data stream elements, e.g. stream cipher systems, RC4, SEAL or A5/3
    • H04L9/0656Pseudorandom key sequence combined element-for-element with data sequence, e.g. one-time-pad [OTP] or Vernam's cipher
    • HELECTRICITY
    • H03ELECTRONIC CIRCUITRY
    • H03MCODING; DECODING; CODE CONVERSION IN GENERAL
    • H03M13/00Coding, decoding or code conversion, for error detection or error correction; Coding theory basic assumptions; Coding bounds; Error probability evaluation methods; Channel models; Simulation or testing of codes
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0852Quantum cryptography
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0852Quantum cryptography
    • H04L9/0858Details about key distillation or coding, e.g. reconciliation, error correction, privacy amplification, polarisation coding or phase coding
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/12Transmitting and receiving encryption devices synchronised or initially set up in a particular manner

Definitions

  • the present invention relates to a secret communication method and a secret communication device.
  • these random numbers can be used to make the third party more It relates to efficient information transmission that does not leak information.
  • the one-time pad method is characterized by using a secret shared key with the same length as the message and discarding the secret shared key once.
  • a secret shared key that is completely consistent with the one-time pad method and has no information leaked to a third party without error between two remote parties. Is difficult.
  • quantum cryptography the random numbers that senders and receivers have after quantum communication, base matching, and error probability estimation are like this. Therefore, in this situation, there is a great demand for secret communication between the two parties.
  • the key distillation described below, including quantum cryptography is performed first, and then this key is used to A method of performing secret communication by the impad method is employed.
  • key distillation means that the two parties can communicate appropriately so that the two parties can almost completely match each other, and the third party can hardly share information.
  • error correction codes are known to deal with communications that can cause errors. Many methods are known for this, such as Reed-Solomon code and LDPC code. It is known that error correction code technology is used for key distillation (see, for example, Non-Patent Document 3).
  • FIG. 1 is a block diagram of a secret communication device of the prior art (Non-patent Document 2), and FIG. 2 is a flowchart showing the secret communication method.
  • the secret communication device includes a key distillation unit A and a one-time pad secret communication unit B.
  • Key distillation unit A has initial random number generators 1 and 15, initial random number storage devices 2 and 16, transmitters 9 and 28, public communication channels 10 and 29, receivers 11 and 30, shared key generators 24 and 26, and confidentiality.
  • a parity check matrix generating device 25 an error correction code decoding function generating device 21, an error rate estimating device 4, and an eavesdropping information amount estimating device 19.
  • the one-time pad secret communication unit B includes a transmitter 28, a public communication channel 29, a receiver 30, an input device 6, an output device 20, an encryption unit 27, and a decryption unit 31.
  • the error rate estimation device 4 and the wiretapping information amount estimation device 19 are shown on the sender side. It ’s okay to put it in the person ’s side.
  • the error rate estimation device 4 estimates the error ratio between the initial random numbers possessed by the sender S and the receiver R, and determines the coding rate.
  • the parity check matrix generator 25 stores in advance a code function corresponding to the error rate value.
  • the error correction code decoding key function generation device 21 stores in advance a decoding key function corresponding to the error rate value.
  • the wiretapping information amount estimation device 19 estimates the upper limit of the amount of information that can be wiretapped by the wiretap with respect to the initial random number of the sender S.
  • the confidentiality enhancement matrix generators 8 and 18 store in advance a confidentiality enhancement matrix that uniquely determines the amount of eavesdropping information and code rate.
  • the shared key generator 24 of the sender S also generates a shared key based on the initial random number, the confidentiality enhancement matrix, and the sign key function.
  • the shared key generator 26 of the receiver R also generates a shared key based on the initial random number, the confidentiality enhancement matrix, the decryption function, and the bit string power sent from the sender S.
  • the initial random number generation devices 1 and 15, the error rate estimation device 4, and the eavesdropping information amount estimation device 19 are configured by using quantum communication or the like.
  • correlated initial random numbers are generated by the initial random number generators 1 and 15 of the sender S and the receiver R (step S1) and stored in the initial random number storage devices 2 and 16 (step S 2 , S3).
  • the error rate estimation device 4 estimates the error rate (error rate) between these random numbers (step S4).
  • the parity check matrix generation device 25 generates a parity check matrix of the code ⁇ corresponding to the error rate value estimated by the error rate estimation device 4 (step S5).
  • the error rate estimating device 4 generates a decoding function corresponding to the encoding (step S6).
  • the eavesdropping information amount estimation device 19 estimates the upper limit of the amount of information that can be eavesdropped by the eavesdropper on this random number (step S7). Next, it is determined whether or not the amount of eavesdropping information is larger than a threshold that also determines the estimated error rate power (step S8). If it is larger, the initial random number is generated again. On the other hand, if it is smaller than the threshold value, a confidentiality enhancement matrix is generated by the confidentiality enhancement matrix generation devices 8 and 18 of the sender S and the receiver R (steps S9 and S10). Then, the sender S generates an initial random number, a confidentiality enhancement matrix, and a shared key determined by the sign key function power in the shared key generation device 24 (step S11).
  • Sender S is a shared key generator 24 and receiver R is required to generate a shared key.
  • Information about a simple syndrome is generated and transmitted using the public communication path 10 (step S12).
  • the receiver R uses the bit string sent from the sender S, the receiver R also generates a shared key with the initial random number, the confidentiality enhancement matrix, and the decryption power function by using the shared key generation device 26 (step S13). The above is the operation of the key distillation unit A.
  • the sender S obtains a logical exclusive sum of the input information (step S14) and the shared key in the encryption key unit 27 and uses it as a ciphertext (step S15).
  • the ciphertext is sent to the recipient R through the public communication path 29 (step S16).
  • the receiver R takes the logical exclusive sum of the ciphertext received by the decryption unit 31 and the shared key, and decrypts the ciphertext (step S17).
  • the shared key generation device 24 of the sender S also has a syndrome generation unit and a shared key generation unit. For comparison with the present invention, these are collectively collected. Described as device 24.
  • the shared key generation device 26 of the receiver R also has a syndrome decryption unit and a shared key generation unit. For comparison with the present invention, these are collectively put into a shared key generation device. 26.
  • a secret shared key is generated by performing key distillation on a correlated random number obtained after quantum communication, base matching, and error probability estimation (see, for example, Patent Document 2). . Thereafter, secret communication is generally performed using this secret shared key.
  • Patent Document 1 a system for interfering quantum cryptography key distribution
  • Patent Document 2 a quantum key distribution method and a communication device
  • a method using a Toeplitz matrix for enhancing confidentiality is known (for example, see Non-Patent Document 2).
  • this type of secret communication device transmits information to the receiver based on the initial random numbers that the sender and the receiver have without leaking information to the third party.
  • a method has been adopted in which a secret shared key is generated by a key distillation apparatus and secret communication is performed using a one-time pad method using the secret shared key (see Non-Patent Document 5).
  • the configuration of the secret communication device described in this secret communication method (the method of Non-Patent Document 5) will be described below.
  • FIG. 3 is a block diagram of a secret communication device of the prior art (Non-Patent Document 5), and FIG. 4 is an operation flowchart thereof.
  • this secret communication device includes a key distillation unit A and a one-time pad secret communication unit B.
  • Key distillation unit A has initial random number generators 51, 65, initial random number storage devices 52, 66, transmitters 59, 62, 78, public communication channels 60, 63, 79, receivers 61, 68, 80, shared key generators 74, 76, confidentiality enhancement matrix generation device 58, coding function generation device 94, error correction code decoding function generation device 71, error rate estimation device 54, wiretapping information amount estimation device 69, converters 90, 91, An encoder 92 and an error correction decoder 93 are provided.
  • the one-time pad secret communication unit B includes a transmitter 78, a public communication channel 79, a receiver 80, an input device 56, an output device 70, an encryption unit 77, and a decryption unit 81.
  • a transmitter 78 a public communication channel 79
  • a receiver 80 an input device 56, an output device 70, an encryption unit 77, and a decryption unit 81.
  • the error rate estimation device 54 and the eavesdropping information amount estimation device 69 may be placed on the receiver side.
  • the error rate estimation device 54 estimates the error rate between the initial random numbers of the sender S and the receiver R, and determines the coding rate.
  • the encoding function generator 94 stores in advance a sign function corresponding to the error rate value.
  • the wiretapping information amount estimation device 69 estimates the upper limit of the amount of information that can be wiretapped by the wiretap with respect to the initial random number that the sender S has.
  • the confidentiality enhancement matrix generator 58 pre-stores a confidentiality enhancement matrix that uniquely determines the amount of eavesdropping information and the sign rate.
  • the shared key generation device 74 possessed by the sender S generates a shared key from the initial random number, the confidentiality enhancement matrix, and the encoding function.
  • the shared key generation device 76 possessed by the receiver R also generates a shared key based on the initial random number, the confidentiality enhancement matrix, the decryption function, and the bit string power sent from the sender S.
  • initial random number generation devices 51 and 65, an error rate estimation device 54, and an eavesdropping information amount estimation device 69 are configured by using quantum communication or the like.
  • correlated initial random numbers are generated by the initial random number generators 51 and 65 of the sender S and the receiver R (step S21), and stored in the initial random number storage devices 52 and 66 (step S22). , twenty three).
  • the error rate estimator 54 gives the error rate between these random numbers (error rate). Is estimated (step S24).
  • the sign key function generating device 94 generates a coding function corresponding to the error rate estimated by the error rate estimating device 54 (step S24) (step S25).
  • the error rate estimation device 54 generates a decoding key function corresponding to the encoding (step S26).
  • an eavesdropping information amount estimation device 69 estimates an upper limit value of the amount of information that can be wiretapped by this eavesdropper. Next, it is determined whether or not the amount of wiretapping information is larger than a threshold that also determines the estimated error rate power. If it is larger, the initial random number is generated again. On the other hand, if it is smaller than the threshold, the sender S generates a confidentiality enhancement matrix by the confidentiality enhancement matrix generator 58 (step S32), and uses the transmitter 62, the public communication channel 63, and the receiver 68. The confidentiality enhancement matrix is transmitted (step S34).
  • the sender S generates a random number with the random number generation device 55 (step S27), performs a sign ⁇ with the encoder 92 (step S28), and uses the encoded bit string as an initial random number.
  • the converted bit string is transmitted to the receiver R using the transmitter 59, the public communication channel 60, and the receiver 61 (step S30).
  • the receiver R converts the received bit string using the initial random number using the variable 91, decrypts the converted bit string using the error correction decoder 93 (step S31), and uses the shared key generator 76.
  • a shared key is generated using the confidentiality enhancement matrix (step S35).
  • the sender S obtains a logical exclusive sum of the input information (step S36) and the shared key in the encryption key section 77 and uses it as a ciphertext (step S37).
  • the ciphertext is sent to the recipient R through the public communication path 79 (step S38).
  • the receiver R takes a logical exclusive sum of the ciphertext received by the decryption unit 81 and the shared key, and decrypts the ciphertext (step S39).
  • a secret shared key is generated by performing key distillation on a correlated random number obtained after quantum communication, base matching, and error probability estimation (for example, Patent Documents 2 and 5). (See) Thereafter, secret communication is generally performed using this secret shared key.
  • the inventor of the present application has also proposed a method for quantitatively evaluating the security of key distillation using a protocol that determines the confidentiality enhancement matrix after generating the initial random number when the initial random number is generated by quantum communication. (See Non-Patent Document 5 below).
  • a system for interfering quantum cryptography key distribution Patent Document 1 below
  • a quantum key distribution method a quantum key distribution method
  • a communication device Patent Document 2 below
  • Patent Document 1 US Pat. No. 5,307,410
  • Patent Document 2 Japanese Patent Laid-Open No. 2004-274459
  • Non-Patent Document 1 Bennett, CH, Brassard, B “Quantum Key Issue: Public Key Distribution and Coin Throwing” Proceedings IEEE Computer, System and Signal Processing International Symposium (IEEE International Symposium on Computer, system, and signal processing), pp. 175-179.
  • Non-Patent Document 2 H. Krawczyk, Advances in Cryptology- CRYPTO '94 (Spri nger-Verlag), LNCS839, pp. 129—139, 1994. “LFSR—based Hashing and Authentication”
  • Non-Patent Document 3 pp. 1265 (2004) Watanabe Youdai, Matsumoto Wataru and Imai Hideaki, “Information Matching in Quantum Key Distribution Using Low-Density Parity Check Codes”, International Information Theory and Its Application Symposium Information reconcilitation mquantum key dist ribution using low— density parity— check codes, “Proc. Of Internatio nal Symposium on Information Theory and its Applications, ISITA2 004, Parma, Italy, October, 2004, p. 1265— 1269.
  • Non-Patent Document 4 Peter W. Shor and John Preskill, “Simple Proof of Security of the BB84 Quantum Key Distribution Protocol J Physical Review Letters volume 85 (2000) pp. 441—444.
  • Non-Patent Document 5 Masato Hayashi “Practical Security Evaluation in Quantum Key Distribution” http: // lanl. Arxiv. OrgZabsz quant—
  • the first problem of the prior art according to the first background art described above is that the secret communication that has undergone the two-stage process of the key distillation unit that generates the shared key and the one-time pad secret communication unit is twice. Open communication. The reason is that the use of the public communication channel in the key distillation unit overlaps the use of the public communication channel in the one-time pad secret communication unit. [0035]
  • the second problem is that the work amount of the entire secret communication is large. The reason is that the work of both the key distillation unit and the one-time pad secret communication unit is necessary.
  • the third problem of the prior art according to the second background art described above is that two public communications in the key distillation unit for generating the shared key and one in the one-time pad secret communication unit. This is a total of 3 public communications.
  • the reason is that the use of the public communication channel in the key distillation unit overlaps the use of the public communication channel in the one-time pad secret communication unit.
  • a first object of the present invention is to provide a secret communication method and a communication device for performing secret communication by using a smaller amount of public communication path while avoiding duplicate public communication. Is to provide.
  • the second object of the present invention is to improve the work of both the key distillation unit and the one-time pad secret communication unit as in the prior art, and to reduce the work amount of the secret communication as a whole. is there.
  • the third object of the present invention is to generate a confidentiality matrix after generating an initial random number and to transmit this duplicate public communication under the condition of transmitting using a public communication channel. It is an object of the present invention to provide a secret communication method and a communication apparatus for performing secret communication using a smaller amount of public communication channels as a whole.
  • the present invention provides:
  • [0043] [3] In the secret communication method described in [1] above, the initial random number generation of the sender and receiver, the error rate estimation of the initial random numbers X and Y, and the amount of wiretapping information The upper limit is estimated by the quantum cryptography protocol. [4] In the secret communication method described in [2] above, the initial random number generation of the sender and the receiver, the error rate estimation of the initial random numbers X and Y, and the upper limit of the amount of wiretapping information are estimated. It is characterized by being done by the quantum cryptography protocol.
  • I is a unit matrix, where the matrix A, B, and T satisfy the following conditions, where F is the sign matrix in the meaning of the error correction code corresponding to the error correction decoding function g.
  • the encryption / decryption auxiliary variable is a reverse sequence T- 1 of T, and decryption of the ciphertext Z is performed.
  • the logical exclusive sum is the sum on ZZdZ.
  • D is an arbitrary natural number.
  • the first device invention is a means for sharing n-bit initial random numbers X and Y (initial random number generators 101 and 115 in FIG. 5) and a device for storing initial random numbers X and Y (FIG. 5).
  • Initial random number storage 10 2, 116) means for estimating the error rate between the initial random numbers X and Y and determining the code rate mZn (error rate estimation device 104 in FIG. 5), wiretapping the initial random number X
  • a device that estimates the upper limit k of the amount of information that can be acquired by a person the eavesdropping information amount estimation device 119 in FIG. 5
  • a means for inputting m ⁇ k bits of information M (the input device 106 in FIG.
  • Means for determining functions required for encoding (encryption function determining device 107 in FIG. 5), means for performing encryption (encrypting device 103 in FIG. 5), and determining a decoding function of an error correction code used for secret communication Means (error correction decryption function determination device 121 in FIG. 5), means for determining an encryption / decryption auxiliary variable used for encryption decryption (the encryption / decryption function in FIG. 5).
  • Auxiliary variable determination device 114) Means for performing error correction decryption (error correction decoder 122 in FIG. 5), means for performing decryption (cryptographic decryption device 117 in FIG.
  • the secret communication can be performed with a smaller number of times of use of the public communication path than in the prior art.
  • the second device invention has means (random number generation device 105 in FIG. 7) for generating a k-bit random number D in addition to the means of the first device invention. Then, the means for determining the encryption / decryption auxiliary variable used for the decryption of the encryption in the first device invention (the encryption / decryption auxiliary variable determining device 114 in FIG. 5) can be eliminated.
  • the amount of work in the encryption device 103 and the encryption / decryption device 117 is reduced as compared with the first device invention.
  • secret communication can be performed with a smaller number of times of using the public communication path than in the prior art.
  • Remote senders and receivers have correlated initial random numbers X and Y, and under the circumstances that such information may not be leaked to a third party In a secret communication method that efficiently transmits information without leaking information to a third party using random numbers X and Y
  • the encryption function is A, B, T, and the transmission information M is encrypted.
  • I is a unit matrix, where A, B, and T satisfy the following conditions, where F is the sign matrix in the meaning of the error correction code corresponding to the error correction decoding function g.
  • the ciphertext Z is decrypted by setting the ciphertext decryption variable as a reverse sequence T- 1 of T. , No
  • the confidentiality enhancement matrix C is generated by a Toeplit z matrix.
  • the logical exclusive sum is the sum on ZZdZ.
  • D is an arbitrary natural number.
  • An initial random number generator (201, 215) that shares n-bit initial random numbers X and Y in a secret communication device that efficiently transmits information without leaking information to a third party using these random numbers;
  • An initial random number storage device (202, 216) for storing the initial random numbers X, Y;
  • an error rate estimation device (204) for estimating an error rate between the initial random numbers X, Y and determining a coding rate mZn;
  • An eavesdropping information amount estimation device (219) for estimating the upper limit k of the information amount that can be obtained by an eavesdropper with respect to the initial random number X, and an input device (206) for inputting m-k bit information M
  • an encryption function determination device (207) for determining a function necessary for encryption encoding, an encryption device (203) for encryption, and a secret communication
  • An initial random number generator (201, 215) that shares n-bit initial random numbers X and Y in a secret communication device that efficiently transmits information without leaking information to a third party using these random numbers
  • An initial random number storage device (202, 216) for storing the initial random numbers X, Y; an error rate estimation device (204) for estimating an error rate between the initial random numbers X, Y and determining a coding rate mZn;
  • An eavesdropping information amount estimation device (219) for estimating the upper limit k of the information amount that can be obtained by an eavesdropper with respect to the initial random number X, and an input device (206) for inputting m-k bit information M
  • an encryption function determination device (207) that determines a function necessary for encryption encoding, and an encryption An
  • the third (22) device invention is a means for sharing n-bit initial random numbers X and Y (initial random number generators 201 and 215 in FIG. 9).
  • Storage device initial random number storage device 202, 216 in FIG. 9
  • means for estimating error rate between initial random numbers X and Y, and determining coding rate mZn error rate estimation device 204 in FIG. 9
  • initial A device that estimates the upper limit k of the amount of information that can be obtained by an eavesdropper with respect to the random number X (device for estimating the amount of wiretap information 219 in Fig. 9), means for inputting m-k bit information M (input device in Fig.
  • Means for transmitting ciphertext Z (transmitter 209, public channel 210, receiver 211 in FIG. 9), means for determining a matrix used to enhance the confidentiality of communication (enhancement of confidentiality in FIG. 9) A matrix generation device 208), and an output device 220 that outputs the restored information M.
  • the secret communication can be performed with a smaller number of times of use of the public communication path than in the prior art.
  • the fourth device invention ([23] above) has means (random number generation device 205 in FIG. 11) for generating a k-bit random number D in addition to the means of the third device invention.
  • the amount of work in the encryption device 203 and the encryption / decryption device 217 is less than that in the first device invention.
  • the secret communication can be performed with the number of times of use of the public communication path, which is less than the conventional technology.
  • FIG. 1 is a block diagram of a secret communication device according to a conventional technique (Non-Patent Document 2).
  • FIG. 2 is a flowchart showing a secret communication method of the prior art (Non-Patent Document 2).
  • FIG. 3 is a block diagram of a secret communication device of prior art (Non-Patent Document 5).
  • FIG. 4 is an operation flowchart of the secret communication device of the prior art (Non-Patent Document 5).
  • FIG. 5 is a block diagram of a secret communication device showing a first embodiment of the present invention.
  • FIG. 6 is a flowchart showing a secret communication method according to the first embodiment of the present invention.
  • FIG. 7 is a block diagram of a secret communication device showing a second embodiment of the present invention.
  • FIG. 8 is a flowchart showing a secret communication method according to the second embodiment of the present invention.
  • FIG. 9 is a block diagram of a secret communication device showing a third embodiment of the present invention.
  • FIG. 10 is an operational flowchart of the secret communication device according to the third embodiment of the present invention.
  • FIG. 11 is a block diagram of a secret communication device showing a fourth embodiment of the present invention.
  • FIG. 12 is an operation flowchart of the secret communication device according to the fourth embodiment of the present invention.
  • the secret communication method of the present invention holds initial random numbers X and Y in which a sender and a receiver at a remote location have a correlation, and the information is leaked to a third party.
  • estimating the error rate of initial random numbers X and Y The step of estimating the upper limit of the amount of wiretapping information and the error correction code based on the estimated error probability! /, And the encryption function, error correction decoding function g, and encryption / decryption auxiliary variable determined therefrom are determined.
  • Ciphertext Z is uniquely determined from the key function, initial random number X, and confidentiality enhancement matrix. And the ciphertext Z is transmitted using the initial random number Y, the concealment enhancement matrix C, the encryption decryption auxiliary parameter and the error correction decryption function g.
  • B includes the step to restore.
  • the secret communication method of the present invention holds initial random numbers X and Y in which a sender and a receiver at a remote location have a correlation, and this information is leaked to a third party. Under these circumstances, the error rate of initial random numbers X and Y is estimated in a secure communication method that uses these random numbers to efficiently transmit information without leaking information to a third party.
  • a step of estimating the upper limit of the amount of eavesdropping information, an error correction code based on the estimated error probability, and a cryptographic function, an error correction decoding function, and an encryption decoding assist that are determined by the error correction code power A step of determining a variable, a step of stochastically determining the confidentiality enhancement matrix C based on an estimated value of an upper limit value of the amount of eavesdropping information and a code error rate of the error correction code, and information to be transmitted to the receiver M as encryption function, initial random number X, confidentiality enhancement matrix
  • the ciphertext Z is uniquely generated using the step of generating the ciphertext Z, the step of transmitting the ciphertext Z, the initial random number Y, the confidentiality enhancement matrix C, the encryption decryption auxiliary variable, and the error correction decryption function g. Includes the step of restoring Z to message M.
  • FIG. 5 is a block diagram of the secret communication device showing the first embodiment of the present invention
  • FIG. 6 is the secret communication.
  • 3 is a flowchart illustrating a method.
  • the secret communication device includes an input device 106 for inputting information M to be transmitted, an output device 120 for outputting restored information M, Early
  • the error rate estimation device 104 and the eavesdropping information amount estimation device 119 may be inserted on the power receiver side as shown in the example on the sender side.
  • initial random number generation devices 101 and 115 are devices that generate n-bit initial random numbers X and Y, respectively.
  • the error rate estimator 104 has a function of estimating the ratio of unmatched bits (error rate) between the initial random number (bit string) X of the sender S and the initial random number Y (bit string) of the receiver R. Also, it has a function of determining the coding rate mZn according to the error rate.
  • the eavesdropping information amount estimation device 119 has a function of estimating the upper limit value of the information amount that can be obtained by the eavesdropper with respect to the initial random number X of the sender S. For example, when generating correlated initial random numbers X and Y using quantum communication, etc., the sender S and the receiver R release a part of the generated initial random numbers and calculate the mismatch rate. Estimated by
  • the upper limit of the amount of wiretapping information can be calculated by estimating the error rate for the other basis in the same manner as in the case of key distillation.
  • the confidentiality enhancement matrix generation devices 108 and 123 store m ⁇ k X k confidentiality enhancement matrices in advance for all possible values for the integer m! / .
  • a coding rate mZn is determined for each assumed error rate. Then, an n X m matrix F that gives encoding of an error-correcting linear code and an error-correcting decoding function g that gives its decoding key are determined according to the individual code rate. Furthermore, the n X n matrix T and the inverse matrix T ⁇ n ⁇ kX k matrix A and n ⁇ k X m ⁇ k matrix B satisfying the following conditions are obtained by the barring method. A, B, and T are used as the encryption function, and the inverse matrix ⁇ - 1 is used as the encryption / decryption auxiliary variable.
  • I represents a unit matrix of k X k
  • 0 represents a zero matrix of k X m ⁇ k.
  • the matrices A, B, and T are stored in the cryptographic function determining apparatus 107 for each assumed error rate. Further, the error correction decoding function g for each assumed individual error rate is stored in the decoding function determining apparatus 121 for the error correction code. The inverse matrix T- 1 for each assumed individual error rate is stored in the encryption / decryption auxiliary variable determining device 114.
  • n-bit initial random numbers X and Y are generated (step S41), and the sender S and the receiver R store the initial random numbers X and Y in the initial random number storage devices 101 and 115, respectively. (Steps S42, S4 3).
  • the error rate estimation device 104 estimates the error rate and determines the code rate nZm (step S44). That is, the value of m is determined.
  • the eavesdropping information amount estimation device 119 estimates an upper limit value k of the amount of information that can be obtained by an eavesdropper with respect to the initial random number X of the sender S (step S47), and if k is larger than m, the initial value Discard the random number and start again from the beginning (step S48). If k is smaller than m, the confidentiality enhancement matrix generators 108 and 123 of both the sender S and the receiver R generate the confidentiality enhancement matrix C of m ⁇ k X k (steps S49 and 53).
  • Step S52 encryption / decryption auxiliary variable determination
  • the encryption function determining device 107 uses the encryption functions Matrix A, B, and T
  • the error correction code decoding function determining device 121 uses the error correction decoding function g
  • the encryption decoding function uses the encryption decoding function.
  • Auxiliary variable determining device 114 determines the encryption / decryption ⁇ auxiliary variable inverse matrix T- 1 .
  • the input device 106 determines m-k bit input information M (step S46).
  • the encryption apparatus 103 uses the matrices A, B, T, the initial random number X, and the confidentiality enhancement matrix C to convert the input information ⁇ into the ⁇ -k bit sequence.
  • Step S50 I represents an n ⁇ k ⁇ n ⁇ k identity matrix.
  • the sender S transmits an n ⁇ k-bit transmission bit string Z to the receiver R using the transmitter 109, the public communication path 110, and the receiver 111 (step S51).
  • the n ⁇ k bit sequence ⁇ is converted into the m ⁇ k bit sequence as follows: Decryption
  • the output device 120 outputs the bit string ⁇ .
  • Ciphertext Z is uniquely generated from the function, initial random number X, and confidentiality enhancement matrix Step, transmitting the ciphertext Z, and restoring the ciphertext Z to the transmission text M using the initial random number Y, the confidentiality enhancement matrix C, the encryption decryption auxiliary variable, and the error correction decryption function g.
  • FIG. 7 is a block diagram of the secret communication device showing the configuration of the second embodiment of the present invention, and FIG. It is a flowchart which shows a secret communication method.
  • the second embodiment has a configuration in which the random number generation device 105 that generates the random number D is added to the configuration of the first embodiment, and the encryption / decryption auxiliary variable determination device 114 is removed.
  • the error rate estimation device 104 and the eavesdropping information amount estimation device 119 have been shown on the sender side, but may be placed on the receiver side.
  • a coding rate mZn is determined for each assumed error rate. Then, an n X m matrix F that gives the encoding of the error correction linear code and an error correction decoding function g that gives its decoding key are determined according to the individual code rate, and each assumed error rate is determined. Each time, the matrix F is stored in the cryptographic function determining apparatus 107. In addition, the error correction decoding function g for each assumed error rate is stored in the decoding function determining apparatus 121 for the error correction code.
  • steps S41 to S44 of the first embodiment are performed (steps S61 to 64).
  • the encryption function deciding device 107 decides the encryption function F
  • the error correction code decoding function decision device 121 decides the error correction decoding function g (step).
  • S65, 73 the encryption function deciding device 107
  • Steps S47 to 49 of the first embodiment are performed (Steps S68 to 70, 74).
  • the input device 106 determines m-k-bit input information M (step S66). Then, the random number generator 105 generates a k-bit random number D (step S67). N-bit ciphertext that is transmitted by adding initial random number X to the n-bit output of the encoder using the m ⁇ k X k confidentiality enhancement matrix C (step S70).
  • Sender S uses n-bit encryption using transmitter 109, public communication channel 110, and receiver 111. Sentence Z is transmitted to recipient R (step S72).
  • the encryption / decryption device 117 decrypts the ⁇ bit string ⁇ into the m ⁇ k bit string ⁇ as follows: (Step
  • the output device 120 outputs the bit string M.
  • An estimation step an error correction code based on the error rate estimation value, an encryption function F corresponding to the error correction code, and an error correction decoding function g, and an upper limit value of the amount of wiretapping information Based on the estimated value of the error correction code and the coding rate of the error-correcting code, and a step of uniquely determining the confidentiality enhancement matrix C, and the information M to be transmitted to the receiver M as the encryption function, the initial random number X, the confidentiality Uniqueness generating matrix C and random number D force ciphertext Z Including iron-flop, and transmitting the ciphertext Z, the initial random number Y, the step of the ciphertext ⁇ restored to ⁇ transmission sentence using a privacy amplification matrix C and the error correction decoding function g.
  • the error rate estimation device and the wiretapping information amount estimation device are shown on the sender side.
  • the sender side or the receiver side It doesn't matter if you put them either way.
  • FIG. 9 is a block diagram of a secret communication device showing a third embodiment of the present invention
  • FIG. 10 is an operation flowchart of the secret communication device.
  • the secret communication device includes an input device 206 for inputting information M to be transmitted, an output device 220 for outputting restored information M, and Early
  • the error rate estimation device 204 and the eavesdropping information amount estimation device 219 are inserted on the sender side is shown here, they may be inserted on the receiver side.
  • the initial random number generation devices 201 and 215 are devices that generate n-bit initial random numbers X and Y.
  • the error rate estimator 204 has a function of estimating the ratio of unmatched bits (error rate) between the initial random number (bit string) X of the sender S and the initial random number Y (bit string) of the receiver R. It also has a function to determine the code rate mZn according to the error rate.
  • the eavesdropping information amount estimation device 219 has a function of estimating the upper limit value of the amount of information that can be acquired by the eavesdropper with respect to the initial random number X of the sender S. For example, when generating correlated initial random numbers X and Y using quantum communication, etc., the sender S and the receiver R share part of the generated initial random numbers, and calculate the mismatch rate. To estimate.
  • the upper limit of the amount of eavesdropping information can be calculated using the same method as in the case of key distillation, and the estimated power of the error probability can be calculated for the other basis.
  • the confidentiality enhancement matrix generation device 208 stores the confidentiality enhancement matrix C of each size !, but has a function of probabilistically providing the confidentiality enhancement matrix C.
  • a coding rate mZn is determined for each assumed error probability. Then, an n X m matrix F that gives encoding of error-correcting linear codes and an error-correcting decoding function g that gives its decoding key are determined according to the individual code rate. In addition, an n ⁇ n matrix T that satisfies the following conditions and its inverse T— n— k X k matrix A and n— Find k matrix B.
  • A, B, and T are cryptographic functions.
  • I represents a unit matrix of k X k
  • 0 represents a zero matrix of k X m ⁇ k.
  • the matrices A, B, and T are stored in the encryption function determination device 207 for each assumed error probability. Also, the error correction decoding function g for each assumed error probability is stored in the error correction code decoding function determination apparatus 221. Further, the inverse matrix T ⁇ 1 for each assumed error probability is stored in the encryption / decryption auxiliary variable determining unit 214 as an encryption / decryption auxiliary variable.
  • n-bit initial random numbers X and Y are generated, and the sender S and the receiver R store the initial random numbers X and Y in their initial random number storage devices 201 and 215 (steps S81 to 83). ).
  • the error rate estimation device 204 estimates the error rate and determines the coding rate nZm (step S84). In other words, the value of m is determined.
  • the eavesdropping information amount estimation device 219 estimates an upper limit value k of the amount of information that can be obtained by an eavesdropper with respect to the initial random number X of the sender S (step S87), and if k is greater than m, From the beginning, if the estimated amount of eavesdropping k is smaller than m, the confidentiality enhancement matrix generator 208 converts the confidentiality enhancement matrix C of m—k X k into the Toeplitz matrix only at the sender S. (Steps S88, 89). That is, 111 random numbers, ..., X are generated independently.
  • the confidentiality enhancement matrix C may be sent to the sender S using the transmitter 212, the public communication channel 213, and the receiver 218.
  • the encryption key function determining device 207 converts the matrices A, B, and T into the error correction code decoding key function determining device 221 and the error correction decoding function.
  • ⁇ Function g is determined by encryption / decryption ⁇ Auxiliary variable determination unit 214 to determine inverse matrix T- 1 (steps S85, 86, 94).
  • the input device 206 determines m ⁇ k-bit input information M (step S91).
  • the encryption device 203 uses the matrices A, B, T, the initial random number X, and the confidentiality enhancement matrix C to convert the input information ⁇ into the ⁇ -k bit sequence.
  • Step S92 I represents an n ⁇ k ⁇ n ⁇ k identity matrix.
  • the sender S transmits an n ⁇ k-bit transmission bit string Z to the receiver R using the transmitter 209, the public communication channel 210, and the receiver 211 (step S93).
  • the encryption / decryption device 217 uses the inverse matrix T—initial random number Y, the confidentiality enhancement matrix C, and the error correction decoder 222 to convert the n ⁇ k bit sequence Z into m ⁇ k as follows: Decryption into bit string M
  • the output device 220 outputs the bit string M.
  • FIG. 11 is a block diagram of a secret communication device showing the configuration of the fourth embodiment of the present invention
  • FIG. 12 is an operation flowchart of the secret communication device.
  • the fourth embodiment has a configuration in which a random number generation device 205 that generates a random number D is added to the configuration of the third embodiment, and the encryption / decryption auxiliary variable determination device 214 is removed.
  • a random number generation device 205 that generates a random number D is added to the configuration of the third embodiment, and the encryption / decryption auxiliary variable determination device 214 is removed.
  • the error rate estimation device 204 and the eavesdropping information amount estimation device 219 may be placed on the receiver side.
  • the coding rate mZn is determined for each assumed error probability. Then, an n X m matrix F that gives the encoding of the error-correcting linear code and an error-correcting decoding function g that gives its decoding key are determined according to the individual code rate, and the expected individual error probability Each time, the matrix F is stored in the encryption key function determination device 207. In addition, the error correction decoding function g for each assumed error probability is stored in the error correction code decoding function determination device 222. Next, steps S81 to 84 of the third embodiment are performed (steps S101 to S104).
  • the encryption key function determining device 207 determines the encryption key function F
  • the error correction code decoding function determining device 221 determines the error correction decoding key function g. (Steps S105 and 106).
  • steps S87 to 90 of the third embodiment are performed (steps S107 to 110).
  • the input device 206 determines m ⁇ k-bit input information M (step S 111).
  • the random number generation device 205 generates a k-bit random number D (step S112). N-bit ciphertext to be transmitted by adding initial random number X to n-bit output of encoder using encryption enhancement unit C with mk X k confidentiality enhancement matrix C
  • Sender S transmits n-bit ciphertext Z to receiver R using transmitter 209, public communication path 210, and receiver 211 (step S114).
  • the encryption / decryption device 217 decrypts the ⁇ bit string ⁇ into the m-k bit string ⁇ as follows (step S1
  • the output device 220 outputs the bit string M.
  • the error rate estimation device and the eavesdropping information amount estimation device are shown on the sender side, but the sender side or the receiver side. You can put it in either one of them.
  • the present invention the number of times of use of the entire public communication path and the total amount of work can be reduced.
  • secret communication is performed in two steps, ie, the key distillation unit and the one-time pad secret communication unit. Communication can be performed.
  • the secret communication method and secret communication device of the present invention can be used for secret communication that can reduce the number of times of use of the entire public communication path and the total amount of work.
  • the secret communication method and secret communication device of the present invention can be used for communication encryption devices that require high security against eavesdropping, electronic authentication based on random number sequences, electronic commerce, and electronic voting systems. is there.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Electromagnetism (AREA)
  • Probability & Statistics with Applications (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
  • Detection And Prevention Of Errors In Transmission (AREA)

Abstract

L'invention concerne un procédé de communication secrète et son dispositif de communication pour réaliser une communication secrète en utilisant une faible quantité de voies de transmission en totalité, tout en évitant une communication publique chevauchée. Le procédé de communication secrète comprend les étapes consistant à : estimer un rapport d'erreur des nombres aléatoires initiaux X, Y ; estimer la limite supérieure d'une quantité d'informations de table d'écoute ; décider d'une fonction de chiffrement décidée à partir d'un code de correction d'erreur sur la base de la valeur d'estimation d'une probabilité d'erreur, une fonction de décodage d'une correction d'erreur g, et une variable auxiliaire de chiffrement/déchiffrement ; décider uniquement d'une matrice d'augmentation de la confidentialité C en fonction du rapport de codage de la valeur d'estimation de la valeur de limite supérieure de la quantité d'informations de table d'écoute et du rapport de codage du code de correction d'erreur ; générer uniquement un document chiffré Z à partir des informations M devant être envoyées à un destinataire en utilisant une fonction de chiffrement, un nombre aléatoire initial X, et une matrice d'augmentation de la confidentialité C ; envoyer le texte chiffré Z ; et déchiffrer le texte chiffré Z dans un document transmis MB en utilisant un nombre aléatoire initial Y, la matrice d'augmentation de la confidentialité C, la variable auxiliaire de chiffrement/déchiffrement, et la fonction de décodage de correction d'erreur g.
PCT/JP2007/062375 2006-07-26 2007-06-20 Procédé de communication secrète et dispositif de communication secrète de celui-ci WO2008013008A1 (fr)

Priority Applications (4)

Application Number Priority Date Filing Date Title
CA2657729A CA2657729C (fr) 2006-07-26 2007-06-20 Procede de communication secrete et dispositif de communication secrete de celui-ci
JP2008526708A JP4885960B2 (ja) 2006-07-26 2007-06-20 秘密通信方法及びその秘密通信装置
GB0900546.3A GB2453471B (en) 2006-07-26 2007-06-20 Secret communication method and secret communication device thereof
US12/374,227 US8239680B2 (en) 2006-07-26 2007-06-20 Secret communication method and secret communication device thereof

Applications Claiming Priority (4)

Application Number Priority Date Filing Date Title
JP2006203984 2006-07-26
JP2006203985 2006-07-26
JP2006-203984 2006-07-26
JP2006-203985 2006-07-26

Publications (1)

Publication Number Publication Date
WO2008013008A1 true WO2008013008A1 (fr) 2008-01-31

Family

ID=38981323

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/JP2007/062375 WO2008013008A1 (fr) 2006-07-26 2007-06-20 Procédé de communication secrète et dispositif de communication secrète de celui-ci

Country Status (5)

Country Link
US (1) US8239680B2 (fr)
JP (1) JP4885960B2 (fr)
CA (1) CA2657729C (fr)
GB (2) GB2479288B (fr)
WO (1) WO2008013008A1 (fr)

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2012049765A (ja) * 2010-08-26 2012-03-08 Mitsubishi Electric Corp 秘匿性増強処理演算装置およびこれを備えた量子暗号通信端末
WO2012137513A1 (fr) * 2011-04-08 2012-10-11 日本電気株式会社 Dispositif de communication dans un système de partage de clé de cryptage et procédé de génération de clé de cryptage
CN114826691A (zh) * 2022-04-02 2022-07-29 深圳市博博信息咨询有限公司 一种基于多维度分析的网络信息安全智能分析预警管理系统
CN116566611A (zh) * 2023-06-20 2023-08-08 中国电子科技集团公司第三十研究所 一种带纠错码的格基加密算法的解密错误率估算方法

Families Citing this family (23)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8855316B2 (en) 2008-01-25 2014-10-07 Qinetiq Limited Quantum cryptography apparatus
GB0801408D0 (en) 2008-01-25 2008-03-05 Qinetiq Ltd Multi-community network with quantum key distribution
GB0801395D0 (en) 2008-01-25 2008-03-05 Qinetiq Ltd Network having quantum key distribution
GB0801492D0 (en) 2008-01-28 2008-03-05 Qinetiq Ltd Optical transmitters and receivers for quantum key distribution
GB0809045D0 (en) 2008-05-19 2008-06-25 Qinetiq Ltd Quantum key distribution involving moveable key device
GB0809038D0 (en) 2008-05-19 2008-06-25 Qinetiq Ltd Quantum key device
GB0809044D0 (en) 2008-05-19 2008-06-25 Qinetiq Ltd Multiplexed QKD
EP2141923A1 (fr) * 2008-06-30 2010-01-06 Thomson Licensing Procédés et appareils pour le cryptage sélectif de données
GB0819665D0 (en) 2008-10-27 2008-12-03 Qinetiq Ltd Quantum key dsitribution
GB0822253D0 (en) 2008-12-05 2009-01-14 Qinetiq Ltd Method of establishing a quantum key for use between network nodes
GB0822254D0 (en) 2008-12-05 2009-01-14 Qinetiq Ltd Method of performing authentication between network nodes
GB0822356D0 (en) 2008-12-08 2009-01-14 Qinetiq Ltd Non-linear optical device
GB0917060D0 (en) 2009-09-29 2009-11-11 Qinetiq Ltd Methods and apparatus for use in quantum key distribution
US8675864B2 (en) * 2010-09-14 2014-03-18 CompuGroup Medical AG Apparatus for encrypting data
GB201020424D0 (en) * 2010-12-02 2011-01-19 Qinetiq Ltd Quantum key distribution
CN103746799B (zh) * 2013-12-26 2017-02-15 中南大学 一种差分的非高斯操作放射性连续变量量子密钥分发方法
CA2982865A1 (fr) * 2015-04-17 2016-10-20 Forticode Limited Procede et systeme pour une securite de transaction
CN106161402B (zh) * 2015-04-22 2019-07-16 阿里巴巴集团控股有限公司 基于云环境的加密机密钥注入系统、方法及装置
JP6681081B2 (ja) * 2016-02-04 2020-04-15 国立大学法人北海道大学 乱数列生成装置、量子暗号送信機及び量子暗号通信システム
CN107294649A (zh) * 2016-04-11 2017-10-24 中兴通讯股份有限公司 编码方法及装置,译码方法及装置
CN108319448B (zh) * 2018-02-02 2022-06-07 北京邮电大学 一种用于随机数发生器中实现高速随机提取的方法
US20220205830A1 (en) * 2020-12-30 2022-06-30 Marissa Miccio Secret scale and method of use thereof
CN114337849B (zh) * 2021-12-21 2023-03-14 上海交通大学 基于互信息量估计神经网络的物理层保密方法及系统

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2004030270A1 (fr) * 2002-09-26 2004-04-08 Mitsubishi Denki Kabushiki Kaisha Appareil de communication cryptographique
WO2005076520A1 (fr) * 2004-02-10 2005-08-18 Mitsubishi Denki Kabushiki Kaisha Procede de remise de cle quantique et dispositif de communication
JP2006054638A (ja) * 2004-08-11 2006-02-23 Research Organization Of Information & Systems 量子鍵配送方法および通信装置

Family Cites Families (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US4417338A (en) * 1981-04-13 1983-11-22 Wisconsin Alumni Research Foundation Cryptographic key sharing circuit and method using code correction
US5054066A (en) * 1988-11-16 1991-10-01 Grumman Corporation Error correcting public key cryptographic method and program
JPH0430270A (ja) * 1990-05-25 1992-02-03 Oki Electric Ind Co Ltd 熱解析caeシステム
JPH0640870B2 (ja) * 1991-09-20 1994-06-01 俊一 武藤 潜在指紋検索装置
US5732139A (en) * 1996-08-26 1998-03-24 Lo; Hoi-Kwong Quantum cryptographic system with reduced data loss
US7227955B2 (en) * 2003-02-07 2007-06-05 Magiq Technologies, Inc. Single-photon watch dog detector for folded quantum key distribution system
US7395494B2 (en) * 2003-12-22 2008-07-01 Electronics And Telecommunications Research Institute Apparatus for encoding and decoding of low-density parity-check codes, and method thereof
JP4200909B2 (ja) * 2004-01-29 2008-12-24 日本電気株式会社 乱数生成共有システム、暗号化通信装置及びそれらに用いる乱数生成共有方法
US20070133798A1 (en) * 2005-12-14 2007-06-14 Elliott Brig B Quantum cryptography on a multi-drop optical network
KR20080104376A (ko) * 2006-03-17 2008-12-02 미쓰비시덴키 가부시키가이샤 통신 장치, 복호 장치, 정보 전송 방법 및 복호 방법
US7945049B2 (en) * 2008-02-28 2011-05-17 Red Hat, Inc. Stream cipher using multiplication over a finite field of even characteristic

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2004030270A1 (fr) * 2002-09-26 2004-04-08 Mitsubishi Denki Kabushiki Kaisha Appareil de communication cryptographique
WO2005076520A1 (fr) * 2004-02-10 2005-08-18 Mitsubishi Denki Kabushiki Kaisha Procede de remise de cle quantique et dispositif de communication
JP2006054638A (ja) * 2004-08-11 2006-02-23 Research Organization Of Information & Systems 量子鍵配送方法および通信装置

Cited By (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2012049765A (ja) * 2010-08-26 2012-03-08 Mitsubishi Electric Corp 秘匿性増強処理演算装置およびこれを備えた量子暗号通信端末
WO2012137513A1 (fr) * 2011-04-08 2012-10-11 日本電気株式会社 Dispositif de communication dans un système de partage de clé de cryptage et procédé de génération de clé de cryptage
US9112677B2 (en) 2011-04-08 2015-08-18 Nec Corporation Communication device and cryptographic key creation method in cryptographic key sharing system
JP5871142B2 (ja) * 2011-04-08 2016-03-01 日本電気株式会社 暗号鍵共有システムにおける通信装置および暗号鍵生成方法
CN114826691A (zh) * 2022-04-02 2022-07-29 深圳市博博信息咨询有限公司 一种基于多维度分析的网络信息安全智能分析预警管理系统
CN114826691B (zh) * 2022-04-02 2023-08-18 上海硕曜科技有限公司 一种基于多维度分析的网络信息安全智能分析预警管理系统
CN116566611A (zh) * 2023-06-20 2023-08-08 中国电子科技集团公司第三十研究所 一种带纠错码的格基加密算法的解密错误率估算方法

Also Published As

Publication number Publication date
JPWO2008013008A1 (ja) 2009-12-17
GB2479288B (en) 2012-03-28
GB2479288A (en) 2011-10-05
GB0900546D0 (en) 2009-02-11
US8239680B2 (en) 2012-08-07
US20090316901A1 (en) 2009-12-24
GB201111098D0 (en) 2011-08-10
GB2453471B (en) 2012-03-28
JP4885960B2 (ja) 2012-02-29
GB2453471A (en) 2009-04-08
CA2657729C (fr) 2013-02-05
CA2657729A1 (fr) 2008-01-31

Similar Documents

Publication Publication Date Title
JP4885960B2 (ja) 秘密通信方法及びその秘密通信装置
CN105556880A (zh) 用于安全通信的方法和装置
CA2819211C (fr) Cryptage de donnees
Harini et al. A novel security mechanism using hybrid cryptography algorithms
JPWO2008081516A1 (ja) ストリーム暗号方法および暗号システム
Hooshmand et al. Efficient polar code-based physical layer encryption scheme
CN114793167A (zh) 基于分组加密与门限共享的网络编码方法、系统及设备
Mihaljević et al. An approach for stream ciphers design based on joint computing over random and secret data
Ravi et al. Security and quantum computing: An overview
Aiswarya et al. Binary RSA encryption algorithm
Park Authentication protocol providing user anonymity and untraceability in wireless mobile communication systems
Parmar et al. A Comparative Evaluation of Algorithms in the Implementation of an Ultra‐Secure Router‐to‐Router Key Exchange System
CN115378614A (zh) 一种数据传输方法、装置及电子设备
JP3517663B2 (ja) 暗号通信方法及び暗号通信システム
Abd Zaid et al. Survey on modern cryptography
Babu et al. Implementation of high security cryptographic system with improved error correction and detection rate using FPGA
Yamamura et al. Error detection and authentication in quantum key distribution
Chen Code-based butterfly key expansion for pseudonymous certificates
KR100388059B1 (ko) 비대칭키 암호 알고리즘을 이용한 데이터 암호화 시스템및 그 방법
CN102571281B (zh) 一种使用缓存节点的安全网络编码传输方法和装置
JP2000004223A (ja) 暗号・認証システム
Cheltha An innovative encryption method for images using RSA, honey encryption and inaccuracy tolerant system using Hamming codes
Han et al. Joint encryption and channel coding scheme based on balancing indices and polar codes
Babu et al. Ortho Linear Feedback Shift Register Cryptographic System
Sharma et al. Key sharing technique to preserve integrity and confidentiality

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 07767214

Country of ref document: EP

Kind code of ref document: A1

WWE Wipo information: entry into national phase

Ref document number: 2008526708

Country of ref document: JP

ENP Entry into the national phase

Ref document number: 0900546

Country of ref document: GB

Kind code of ref document: A

Free format text: PCT FILING DATE = 20070620

Ref document number: 2657729

Country of ref document: CA

WWE Wipo information: entry into national phase

Ref document number: 0900546.3

Country of ref document: GB

NENP Non-entry into the national phase

Ref country code: DE

NENP Non-entry into the national phase

Ref country code: RU

WWE Wipo information: entry into national phase

Ref document number: 12374227

Country of ref document: US

122 Ep: pct application non-entry in european phase

Ref document number: 07767214

Country of ref document: EP

Kind code of ref document: A1